WO 2005/098622 PCT/JP2005/006805 



FIG. 1 



IC card 



^-200 




201 



IF 



-205 



RAM 
T 



202 



ROM 



EEPROM 



203 



V 



204 



FIG. 2 



^321 
First C_E_APL| 



322 



Second C 



COS] 



IC card 



^323 



I2^\ 



200 



C P APL 



OS 





1 


i 


i 




Memory area 




i 











r 



310 



n 



1/20 



WO 2005/098622 



PCT/JP2005/006805 



FIG. 3 



Control APL 



EC server 
109 



107. 



A 
V 



108 



Reading 




Writing 


APL 




APL 




Reader/writer 



321 



A 



340 



V 



100 



r 



121 



IC card 



200 



> 


Second 
C_E_APL 





2/20 



WO 2005/098622 



PCT/JP2005/006805 



FIG. 4 



101 
102 



103 



EC server 



First E_APL 



Second E API- 



nth E APL 



^100 



123 



120 




Public service 
server 



First P_APL 



Second P_APL 



nth P APL 



122 



\ 



Base station | 

I /I 



121 



Reader/writer ^ 



Portable 
device 



O ^ CD 
CD CD CD 
CD CD CD 
CD CD CD 
CD CD CD 




200 



110 

-J 

111 
112 

113 



3/20 



WO 2005/098622 PCT/JP2005/006805 




4/20 



WO 2005/098622 



PCT/JP2005/006805 



FIG. 6 



Public service server 
117 



Control APL 



115. 



A ~ 
V 



A 
V 



V 



116 



Reading 




Writing 


APL 




APL 



110 




200 



5/20 



WO 2005/098622 PCT/JP2005/006805 



i 




6/20 



WO 2005/098622 



PCT/JP2005/006805 



FIG. 8 



Security level table 


Level 


Value 


Encryption algorithm 


Strong 


03h 


Triple-DES ? 


Medium 


02h 


DES 


Weak 


Olh 


AES | 


None 


OOh 


No encryption 



FIG. 9 

_.609 



Algorithm table | 


Number 


Encryption algorithm 


0 


Triple-DES 


1 


DES 


2 


AES 


3 


No encryption 



7/20 



WO 2005/098622 PCT/JP2005/006805 



FIG. 10 

601 



APL information table j 



Library APL 
information 



Public pool APL 
information 



Electronic money 
APL information 



Application ID 


2 bytes 


Security level 


2 bytes 


Encryption information 


4 bytes 


Key information 


32 bytes 


Protocol version information 


4 bytes 



8/20 



WO 2005/098622 



PCT/JP2005/006805 









x: 




















o 










O 










o 










O 










>c 










SZ 










o 










o 










o 










o 












SZ 






sz 




x: 






o 


• 


o 






o 


• 

• 


o 






o 


• 


o 






o 


• 


o 






r~ 


sz 


JC 






sz 


JC 


x: 






O 


ro 


o 






o 




o 








*■ -* 


o 








1 1 


o 


SZ 


SZ 


JC 




X! 


x: 




JC 


SZ 


x: 


\r 






CM 


o 


00 




o 


U i 


o 


CO 


o 


o 


O 


o 


r-N 


O 


o 


LU 


o 


sz 


-C 




-C 




sz 


x: 


x: 


JC 




CM 




o 




tH 




CO 


o 


LU 


LO 




o 


00 


o 


o 


IT) 


o 


u 


LU 


O 






c 










c 










o 










o 










to 




on 










on 






E 










E 




4-» 








c 


rma 






u. 


C 




Q 


"55 


c 


o 


Q 
i — i 


ID 


c 


g 


rm 




> 




CO 






> 








Ul 1 


CD 


Ul 1 


rm 

111! 


c 


ion 


cu 


on 

Ul 1 


E 


c 


licati 


urity 


rypti 


£ 


sion 


licati 


urity 


rypti 


c 


sion 


CL 


u 


u 


>* 




CL. 


u 


U 


>> 




CL 


CD 


c 






CL 


cu 


c 






< 


CO 


LU 




> 


< 




LU 




> 



Q. 
< 

C 

o o 

2 *3 

si 
■§•1 



CL O 

<'.D 
^ CO 

£s 

fD SL- 

o 

xi *+z 
~i c 



C5> 









OOh [ 










OOh 

■ 








OOh 


• 
• 


OOh 






OOh 


33h 


OOh 


FFh 


OOh 


OOh 


22h 


OOh 


FEh 


03h 


MOD 


llh 


JC 
< 






ion 










4-» 

ro 




ion 


Application ID 


Security level 


Encryption inforn 


Key information 


Version informati 


v. 




V 







c o 
©5. 

LJJ < 



9/20 



WO 2005/098622 PCT/JP2005/006805 



FIG. 12 

( Start ^ 

* ._.S901 

Authenticate first APL \ 



t- ,^S902 

Authenticate second APL| 



* u^S903 

Accept selection of data to be duplicated \ 



T |^S904 

Obtain security level information j 



* — u_^S905 

Output security level information | 



S906 

'Security level of^--^^ jsj 
first APL ^ Security level of_ 
second API? 



^S909 
D u pi icate data via server | 



S908 

Another 
duplication is to be performed^ 
continuously? 



End 



10/20 



WO 2005/098622 



PCT/JP2005/006805 



FIG. 13 



131 

ziz 

Library card 



I Name 



T3 *fc 4* 



Address 



Hiroshima * * * 

^> *A» 



130 



: z; 

Select duplication 
destination 



Public pool card 



OOOOO 



Di 



132 



-133 



Duplicate data 



134 



131 
2_ 



FIG. 14 

135 



132 




z 



Library card 



Name 



HTs 



Address 



Hiroshima* * * 

«J> *J> vL» <I> 




Public pool card 



Name 



Telephone number 



Click arrow 



11/20 



WO 2005/098622 



PCT/JP2005/006805 



FIG. 15 



131 

yt- 

Library card 



5<1 Name 



T*3 *fc 



I Address 



Hiroshima* * * 

<tL» «^ *JL+ 



130 



z 



Public pool card 



Name 



"J"q S|C 5fC 



Telephone number 



132 



Duplication of "Name" has completed 



FIG. 16 



Server 



Strong 
Security level 
Weak 



(bi» 


32 i 


ai 


;b2 v . 



First APL Second APL 



12/20 



WO 2005/098622 PCT/JP2005/006805 




13/20 



WO 2005/098622 PCT/JP2005/006805 




14/20 



WO 2005/098622 PCT/JP2005/006805 



FIG. 19 



C Start } 

T 



Authenticate first APL 



Authenticate second APL 



r 
r 



S1001 



S1002 



S1003 



Obtain security level information \ 



S1004 



Security level of 
first APL ^ Security level of. 
second APL?^ 

.S1006 



.S1007 



Duplicate data inside card| Duplicate data via server | 



-S1008 

Another 
duplication is to be performed^ 
continuously? 



End 



15/20 



WO 2005/098622 PCT/JP2005/006805 




16/20 



WO 2005/098622 PCT/JP2005/006805 



FIG. 21 



CLA 



INS 



PI 



P2 



< — Mandatory header — > 



Lc 



Data 



Le 



-Conditional body- 



FIG. 22 



Command 
name 


SELECT 


READ 
RECORD 


INTERNAL 
AUTHENTICATE 


CLA(lbyte) 


OOh 


OOh 


OOh 


INS(lbyte) 


A4h 


B2 


88h 


Pl(lbyte) 


XXh 


Record Number 


OOh 


P2(lbyte) 


OOh 


XXh 


OOh 



17/20 



WO 2005/098622 PCT/JP2005/006805 



CO 
CM 

I— I 

Li- 



en 
C 

"E 
cu 

CD 



CM 
JQ 



00 
JD 



LD 



VD 



JD 



00 



LU 

C 
fO 



u 

JD 
(V 

in 



u 

cd 
CO 



c 

CD 

U 
i— 
CD 

c 

LL. 
LU 

t* 
_CD 

(U 



c 
<u 

u. 
CL 

u 
is 

CD 

CO 



CD 

E 



JD 
C 

o 
u 

JD 

CD 
if) 

u 

CD 



E 
o 



u 
JD 

CD 
if) 



C 
CD 



£ 
o 



u 

CD 
CO 



CD 

'u 

CD 
OL 



CD 
CO 

> 

CD 



C 
< 



18/20 



WO 2005/098622 PCT/JP2005/006805 



FIG. 24 



Data section 



SW1 



SW2 



Body 



-Trailer 



FIG. 25 



b8 


b7 


b6 


b5 


b4 


b3 


b2 


bl 


Meaning 


0 


0 


0 


0 










Common command 


1 


0 


0 


0 










Unique command 



19/20 



WO 2005/098622 PCT/JP2005/006805 



FIG. 26A 



^202 


^203 


^201 


IC card 
^205 


RAM 


ROM 




CPU 




IF 



200 



TRM area 
206 



FeRAM 



207 



Secure 




Flash 


flash 




memory 







209 



FIG. 26B 



206 
207 
208 



Level: Strong 



Level: Medium 



Level: Weak 



20/20 



